Dlink Dir-823x Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dlink Dir-823x Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (39)
CVE-2024-39962 — CVSS 9.8 (critical): D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router v21_D240126 was discovered to contain a remote code execution (RCE) vulnerability…
CVE-2025-29040 — CVSS 9.8 (critical): An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41737c
CVE-2025-29041 — CVSS 9.8 (critical): An issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710c
CVE-2025-29042 — CVSS 9.8 (critical): An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the macaddr key value to the function 0x42232c
CVE-2025-29043 — CVSS 9.8 (critical): An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x417234
CVE-2025-55848 — CVSS 8.8 (high): An issue was discovered in DIR-823 firmware 20250416. There is an RCE vulnerability in the set_cassword settings interface, as the…
CVE-2025-0492 — CVSS 7.5 (high): A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical. Affected by this vulnerability is the function…
CVE-2026-1125 — CVSS 7.3 (high): A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub_412E7C of the file…
CVE-2025-10123 — CVSS 7.3 (high): A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is the function sub_415028 of the file…
CVE-2026-2120 — CVSS 7.2 (high): A vulnerability was identified in D-Link DIR-823X 250416. This affects an unknown function of the file /goform/set_server_settings of the…
CVE-2026-2084 — CVSS 7.2 (high): A weakness has been identified in D-Link DIR-823X 250416. This impacts an unknown function of the file /goform/set_language. Executing a…
CVE-2026-2210 — CVSS 7.2 (high): A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub_4211C8 of the file /goform/set_filtering. Such…
CVE-2026-2143 — CVSS 7.2 (high): A security vulnerability has been detected in D-Link DIR-823X 250416. This issue affects some unknown processing of the file…
CVE-2026-2142 — CVSS 7.2 (high): A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_420688 of the file /goform/set_qos…
CVE-2026-2129 — CVSS 7.2 (high): A vulnerability was found in D-Link DIR-823X 250416. Affected by this issue is some unknown functionality of the file…
CVE-2025-29039 — CVSS 7.2 (high): An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the function 0x41dda8
CVE-2026-2155 — CVSS 7.2 (high): A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function sub_4208A0 of the file /goform/set_dmz…
CVE-2026-2157 — CVSS 7.2 (high): A security vulnerability has been detected in D-Link DIR-823X 250416. This affects the function sub_4175CC of the file…
CVE-2026-2175 — CVSS 7.2 (high): A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_420618 of the file /goform/set_upnp…
CVE-2025-1103 — CVSS 6.5 (medium): A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function…
CVE-2025-10634 — CVSS 6.3 (medium): A weakness has been identified in D-Link DIR-823X 240126/240802/250416. The impacted element is the function sub_412E7C of the file…
CVE-2025-11092 — CVSS 6.3 (medium): A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub_412E7C of the file…
CVE-2025-11095 — CVSS 6.3 (medium): A vulnerability was detected in D-Link DIR-823X 250416. This vulnerability affects unknown code of the file /goform/delete_offline_device…
CVE-2025-11096 — CVSS 6.3 (medium): A flaw has been found in D-Link DIR-823X 250416. This issue affects some unknown processing of the file /goform/diag_traceroute. Executing…
CVE-2025-11097 — CVSS 6.3 (medium): A vulnerability has been found in D-Link DIR-823X 250416. Impacted is an unknown function of the file /goform/set_device_name. The…
CVE-2025-11098 — CVSS 6.3 (medium): A vulnerability was found in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/set_wifi_blacklists…
CVE-2025-11099 — CVSS 6.3 (medium): A vulnerability was determined in D-Link DIR-823X 250416. The impacted element is the function uci_del of the file /goform/delete_prohibitin…
CVE-2025-11100 — CVSS 6.3 (medium): A vulnerability was identified in D-Link DIR-823X 250416. This affects the function uci_set of the file /goform/set_wifi_blacklists. Such…
CVE-2025-14208 — CVSS 6.3 (medium): A security flaw has been discovered in D-Link DIR-823X up to 20250416. This affects the function sub_415028 of the file…
CVE-2026-1544 — CVSS 6.3 (medium): A security flaw has been discovered in D-Link DIR-823X 250416. Impacted is the function sub_41E2A0 of the file /goform/set_mode. Performing…
CVE-2025-10401 — CVSS 6.3 (medium): A vulnerability was detected in D-Link DIR-823x up to 250416. The affected element is an unknown function of the file /goform/diag_ping…
CVE-2025-10814 — CVSS 6.3 (medium): A vulnerability was determined in D-Link DIR-823X 240126/240802/250416. Affected by this vulnerability is an unknown functionality of the…
CVE-2026-2063 — CVSS 4.7 (medium): A security flaw has been discovered in D-Link DIR-823X 250416. This vulnerability affects unknown code of the file /goform/set_ac_server of…
CVE-2026-2061 — CVSS 4.7 (medium): A vulnerability was determined in D-Link DIR-823X 250416. Affected by this issue is the function sub_424D20 of the file /goform/set_ipv6…
CVE-2025-2717 — CVSS 4.7 (medium): A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126/240802. This issue affects the function…
CVE-2026-2082 — CVSS 4.7 (medium): A vulnerability was identified in D-Link DIR-823X 250416. The impacted element is an unknown function of the file /goform/set_mac_clone…
CVE-2026-2081 — CVSS 4.7 (medium): A vulnerability was determined in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/set_password…
CVE-2026-1685 — CVSS 3.7 (low): A vulnerability was identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_40AC74 of the component Login. Such…